Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in WebCalendar 1.2.0, and other versions before 1.2.5, allow remote attackers to hijack the authentication of administrators for requests that (1) delete an event or (2) ban an IP address from posting via unknown vectors. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
K5N WebCalendar多个跨站请求伪造漏洞
Vulnerability Description
WebCalendar是一款基于Web的日历应用程序。该应用程序具备查看日历、添加提醒、制作时间表等功能。 WebCalendar存在多个跨站请求伪造漏洞。远程攻击者可以借助未明向量挟持管理员的多个认证请求,这些请求包括:(1) 删除一个项目或 (2) 禁止分配一个IP地址。注意:该漏洞的详细信息来源于第三方。
CVSS Information
N/A
Vulnerability Type
N/A